Check the liner notes of your monthly OS updates for sandbox escape and RCE fixes and you’ll understand the prevalence of the problem I’m trying to describe. Couple that with the fact that mobile OS software configurations are relatively highly standardized and very sensitive and valuable personal information is usually stored on mobile devices.